Im developing a school, I just applied all the SQL Injection protections that exist and database security, Administrative Roles, Parametrized Queries, Sanitize input from the client.
But FOOL ME! I never encrypt user password, I just store it. But I dont think any Hacker will reach the dabatase.
So Should I encrypt the password or no
Thanks :)
Aucun commentaire:
Enregistrer un commentaire